[Git][security-tracker-team/security-tracker][master] Add CVE-2021-21295/netty

Tue, 09 Mar 2021 12:54:26 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
8c18766c by Salvatore Bonaccorso at 2021-03-09T21:53:45+01:00
Add CVE-2021-21295/netty

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -16512,7 +16512,9 @@ CVE-2021-21297 (Node-Red is a low-code programming for 
event-driven applications
 CVE-2021-21296 (Fleet is an open source osquery manager. In Fleet before 
version 3.7.0 ...)
        NOT-FOR-US: Fleet
 CVE-2021-21295 (Netty is an open-source, asynchronous event-driven network 
application ...)
-       TODO: check
+       - netty <unfixed>
+       NOTE: 
https://github.com/netty/netty/security/advisories/GHSA-wm47-8v5p-wjpj
+       NOTE: 
https://github.com/netty/netty/commit/89c241e3b1795ff257af4ad6eadc616cb2fb3dc4
 CVE-2021-21294 (Http4s (http4s-blaze-server) is a minimal, idiomatic Scala 
interface f ...)
        NOT-FOR-US: Http4s
 CVE-2021-21293 (blaze is a Scala library for building asynchronous pipelines, 
with a f ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8c18766ce88147c208171eb9e44da1d19c585615

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8c18766ce88147c208171eb9e44da1d19c585615
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to